2 matches found
WordPress Events Made Easy Plugin <= 2.3.14 is vulnerable to SQL Injection
Software Events Made Easy Type Plugin Vulnerable versions = 2.3.14 Fixed in N/A OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2023-28660 Patch priority High CVSS severity High 8.5 Developer Claim ownership PSID b6f80ca22af2 Credits Joshua Martinelle Tenable Research Required...
WordPress Events Made Easy plugin <= 2.2.35 - SQL Injection (SQLi) vulnerability
SQL Injection SQLi vulnerability discovered by Krzysztof Zając in WordPress Events Made Easy plugin versions = 2.2.35. Solution Update the WordPress Events Made Easy plugin to the latest available version at least 2.2.36...